Re: How to setup LDAP

>>> The user administration and global authentication portion WAS NOT
FREE.
That's almost correct. When 10g was introduced, the ASO license was refactored such that EE now includes password-based Enterprise User Security. If you want certificate-based security, that still requires the ASO option to be licensed. I'm not sure that the price list shows that very well, but it is verifiable--I think it's in the docs where they show the features and options list and what editions they're available in.
Dan
----- Original Message ----
From: "krish.hariharan@quasardb.com" <krish.hariharan@quasardb.com>
To: Mayen.Shah@lazard.com
Cc: oracle-l@freelists.org; Jared Still <jkstill@gmail.com>
Sent: Monday, January 14, 2008 11:41:09 AM
Subject: RE: How to setup LDAP
<!--
_filtered {font-family:Tahoma;panose-1:2 11 6 4 3 5 4 4 2 4;}
_filtered {font-family:sans-serif;panose-1:0 0 0 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;margin-bottom:.0001pt;font-size:12.0pt;font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;text-decoration:underline;}
p.MsoPlainText, li.MsoPlainText, div.MsoPlainText
{margin-right:0in;margin-left:0in;font-size:12.0pt;font-family:"Times New Roman";}
p
{margin-right:0in;margin-left:0in;font-size:12.0pt;font-family:"Times New Roman";}
span.EmailStyle18
{font-family:"Courier New";color:blue;font-weight:normal;font-style:normal;text-decoration:none none;}
_filtered {margin:1.0in 1.25in 1.0in 1.25in;}
div.Section1
{}
-->
Oracle OID has
the identity management framework and that had two parts the database naming (tnsnames/onames
functionality) and the external/global user administration and authentication
functionality. When I converted/complemented ONAMES with OID I found from
Oracle Sales and Metalink that the database naming partition of OID was free
since Oracle 10g treats ONAMES as “He who shall not be named”, pun
not intended. The user administration and global authentication portion WAS NOT
FREE.
The database
naming (tnsnames functionality) can be done with sqlnet.ora directory path
including LDAP and an ldap.ora or using DNS entries that advertise a well known
ldap host.
You should
clarify with your account representative on the use of the OID identity
management framework for external/global user administration since that part is
a separately licensed ($$) component. I believe this is mentioned in Rich’s
and Jared’s responses.
I haven’t
been following the entire thread, but I also found out that in 10g the
distribution of OID coming through the RBDMS install is not production and one
through IAS app distribution is. I discovered that when I was looking for the
onamesproxy which we tested in 9.2 OID and not available in 10g OID.
Please feel free
to correct if your experience and information is current and different.
Regards,
-Krish
Krish Hariharan
President/Executive Architect, Quasar Database Technologies, LLC
(303) 808-5172
http://www.linkedin.com/in/quasardb